< ciso
brief />
Vendor and Hyperscaler Watch Banner

All news in category “Vendor and Hyperscaler Watch

4607 articles · page 18 of 231

AWS Management Console Private Access Launch

🔒 AWS Management Console Private Access now lets customers reach the AWS Console from VPCs without any internet connectivity, enabling management of AWS infrastructure in air-gapped and strictly controlled networks. The feature routes console traffic through VPC endpoints using AWS PrivateLink, letting customers enforce VPC endpoint policies and existing IAM, Service Control, and Resource Control policies. Available in all AWS commercial regions, customers pay only for the underlying VPC endpoint usage and data processing.
read more →

AWS introduces continuous modernization for codebases

🔍 AWS Transform today launched a Preview of continuous modernization that autonomously detects, prioritizes, and remediates technical debt across enterprise software portfolios. The capability brings visibility across thousands of repositories, supports assessments like agentic and modernization readiness, and integrates with AWS Security Agent to find and fix source code vulnerabilities. Customers can connect repositories from GitHub, GitLab, Bitbucket, and run analyses via the web console, CLI, Transform Kiro, or coding agents, with job state synchronized across surfaces. The service is available in US East (N. Virginia) and Europe (Frankfurt) regions.
read more →

AgentCore Memory adds strictly consistent metadata

📌 Amazon Bedrock AgentCore Memory now allows applications to attach metadata values directly to short-term memory events so those values are preserved exactly when converted into long-term memory records. Previously, metadata had to be inferred by the LLM during extraction. Setting a metadata key to STRICTLY_CONSISTENT ensures the provided value is unchanged, prevents merging across different values, and lets you group events for department scoping, compliance boundaries, and multi-tenant isolation. The feature supports up to three strictly consistent STRING keys per strategy and is available in all AWS Regions where AgentCore Memory is supported.
read more →

Amazon FSx adds cross-region replication to opt-in Regions

🔁 Amazon FSx for OpenZFS now supports on-demand replication to and from AWS opt-in Regions, enabling incremental point-in-time snapshot transfers beyond default-enabled Regions. This feature simplifies disaster recovery, cross-account replication, and lower-latency global access while leveraging FSx for OpenZFS’s snapshots, cloning, and high throughput. Available wherever FSx for OpenZFS is offered, replication carries no extra FSx charge; standard inter-Region data transfer fees apply.
read more →

AWS streamlines Foundational Technical Review process

✅ AWS Partner Central now accepts SOC 2 Type II audit reports or AWS Well-Architected Framework Reviews (WAFR) to complete the Foundational Technical Review (FTR) in minutes. The process uses AI-powered validation to provide immediate approval or actionable feedback, accelerating access to the qualified software badge, APN program eligibility, co-selling, and funding benefits. Partners with SOC 2 can submit third-party reports; those without can submit WAFR reports from the AWS Well-Architected Tool. The service provides specific AI-generated remediation steps when issues are found, and FTR is available to all partners for solutions deployed on AWS and with AWS Partner Revenue Measurement enabled.
read more →

Amazon CloudWatch Adds Log Analytics Console

🛠️ Amazon CloudWatch introduces Log Analytics, a unified console that combines CloudWatch Logs Insights, Live Tail, and Contributor Insights for integrated log querying, real-time streaming, and contributor identification. Users can run multiple queries in tabs, leverage patterns, saved queries with parameters, facets, natural language query generation, and visualizations. Live Tail and Contributor Insights are accessible within Log Analytics, which is the default experience, while opt-out users retain separate access to each feature. The capability is available in all commercial AWS Regions and uses existing pricing for Logs Insights queries, Live Tail, and Contributor Insights.
read more →

Palo Alto DNS Security Preview for Route 53 Resolver

🛡️ Amazon Web Services announces a preview integration of Palo Alto Networks Advanced DNS Security with Route 53 Resolver DNS Firewall. Security teams can now subscribe to PANW protections directly from the DNS Firewall console and apply categories like Command and Control, Malware, and Phishing without deploying separate firewalls. The integration supports hybrid traffic, AWS multi-account management, centralized visibility via AWS Security Hub, and preview availability across multiple regions.
read more →

Google unveils new data agents for the Agentic Data Cloud

🤖 Google announces expanded Agentic Data Cloud capabilities, introducing new data agents and tools to enable conversational analytics and agent-driven workflows across BigQuery, Lakehouse, AlloyDB, Spanner, and Cloud SQL. The update includes Data Engineering, Data Science, Database Observability, Looker Dashboard, Data Insights, and Deep Research agents, plus developer toolkits like the Data Agent Kit and Managed MCP servers. These features aim to ground agents in real-time enterprise data with unified governance and near-100% accuracy for tasks such as NL-to-SQL conversions and automated pipeline maintenance.
read more →

Amazon ECS Express Mode now available in GovCloud

🚀 Amazon Elastic Container Service (Amazon ECS) Express Mode is now available in AWS GovCloud (US-East) and AWS GovCloud (US-West). ECS Express Mode lets developers rapidly launch containerized applications with AWS-managed domains, public or private HTTPS, and automatic scaling. It consolidates up to 25 services behind a single Application Load Balancer with rule-based routing while keeping all resources fully accessible in your account. Deployments can be performed via Console, SDK, CLI, CloudFormation, CDK, and Terraform; you pay only for the AWS resources provisioned.
read more →

NCSC Warning: Prepare for an Unprecedented Patch Wave

🔔 The NCSC warns organisations to brace for a large-scale “patch wave” as AI accelerates exploitation of technical debt. Check Point outlines how Exposure Management helps public sector and CNI teams identify internet-facing assets, prioritise exploitable vulnerabilities, and remediate safely. The guidance emphasises discovery, exploitability-based prioritisation, and compensating controls to reduce MTTR.
read more →

FSx for Lustre Intelligent-Tiering expands to 13 Regions

🗂️ Amazon FSx for Lustre now supports the Intelligent-Tiering storage class in 13 additional AWS Regions across Africa, Europe, Asia Pacific, and South America. The Intelligent-Tiering class provides fully elastic, low-cost Lustre storage optimized for mixed hot/cold workloads by automatically tiering data across Frequent Access, Infrequent Access, and Archive tiers, with an optional SSD read cache for active data. It offers up to 34% better price-performance versus on-premises HDD and up to 96% lower costs for rarely accessed data compared to other managed cloud file offerings.
read more →

AWS Cost Explorer preserves billing history for accounts

📊 AWS announces Cost Explorer historical data retention for accounts in billing groups. Customers using AWS Billing Conductor and Billing Transfer can map accounts to billing groups and view billing data priced at the payer or Bill-Transfer account's pro forma rates. Previously, billing group mapping restricted access to historical billing data priced at AWS billable rates. Accounts already onboarded will retain access to their historical Cost Explorer data with no additional action required.
read more →

Graph-Based Systems Enable Trusted Agentic Action

🧭 This post describes how Yahoo and Google Cloud built Seller Agent, an agentic media-buying platform that collapses multi-week manual workflows into governed campaigns executed in seconds. The architecture uses a dual-graph approach — a knowledge graph for deterministic business logic and a context graph for auditable decision traces — combined with Google Cloud services like Spanner Graph, BigQuery Graph, and Gemini. The design emphasizes explainability, regulator-grade governance, and closed-loop learning to ensure autonomous actions remain transparent and accountable.
read more →

Microsoft Defender email security benchmarking insights

📊 Over the past year Microsoft published quarterly, real‑world benchmarking that compares Microsoft Defender against secure email gateway (SEG) and integrated cloud email security (ICES) vendors. The reports show Defender consistently misses fewer high‑severity threats pre‑delivery, while ICES vendors mainly improve promotional and bulk filtering. Defender’s post‑delivery remediation contribution has risen substantially, underscoring its role as a critical backstop.
read more →

Four Lessons That Shaped AI Threat Defense

🛡️ In his first Cloud CISO Perspectives, Chris Betz outlines four lessons guiding Google Cloud’s AI Threat Defense: Prepare, Scan and Prioritize, Remediate, and Monitor. He highlights how AI accelerates vulnerability discovery and defense, the importance of operational frameworks and harnesses, and the need for centralized tracking, risk-based patching, and continuous AI-driven monitoring. The guidance emphasizes reducing attack surface, close engineering collaboration, and building resilient systems.
read more →

AWS Lambda Managed Instances adds tag propagation

🔔 AWS Lambda Managed Instances (LMI) now supports tag propagation to automatically apply tags to managed resources such as Amazon EC2 instances, Amazon EBS volumes, and ENIs. This enables consistent cost allocation, enforcement of service control policies, and compliance across resources provisioned by LMI. Configure the PropagateTags setting via CreateCapacityProvider or UpdateCapacityProvider in Explicit mode and provide key-value pairs; the feature is available in all commercial Regions where LMI is GA.
read more →

AWS DevOps Agent adds custom SRE agents

🛠️ AWS announces that DevOps Agent now supports custom SRE agents, bring-your-own sub-agents, and headless access via MCP and A2A protocols. These features let teams automate recurring SRE workflows, extend the agent by connecting external sub-agents, and invoke DevOps Agent from familiar tools such as Kiro and Claude. Additional updates include chat enhancements, incident-skip rules, enhanced knowledge with memories and Git-managed skills, human labeling, dashboards for task quality, and availability in five new Regions.
read more →

AWS Partner Central adds lead enrichment features

🟢 AWS Partner Central now offers lead enrichment and prospecting, letting AWS Partners enrich AWS-sourced or partner-sourced leads with AWS-generated propensity insights and recommendations for program, funding, and sales motion eligibility. Partners can upload leads in the console or programmatically via the AWS Partner Central API. Each enriched lead returns propensity-to-buy signals, Marketplace purchase likelihood, solution-category alignment, and eligibility for programs like Partner Greenfield Program and Pioneer Credits. The feature is available to ACE-eligible Partners in the US East (N. Virginia) Region.
read more →

Summer travel phishing surges; hospitality attacks rise

📈 Check Point Research warns of a sharp seasonal surge in travel-related cyberattacks ahead of summer 2026, with the hospitality sector experiencing a 24% year-over-year increase in weekly attacks and a 122% rise over three years. The team found nearly 50,000 new travel-related domains in May 2026—many linked to coordinated bulk-registration campaigns—and active phishing sites impersonating major booking platforms to harvest credentials and payments. Travelers are urged to verify domains, use credit cards, enable two-factor authentication, and avoid clicking links in unsolicited messages.
read more →

Amazon EC2 C7i instances now in Israel region

🚀 Starting today, Amazon EC2 C7i instances powered by custom 4th Gen Intel Xeon Scalable processors (Sapphire Rapids) are available in the Israel (Tel Aviv) Region. C7i instances offer up to 15% better price-performance than C6i, larger instance sizes up to 48xlarge, and two bare metal sizes with built-in Intel accelerators. They support Intel AMX, and permit up to 128 EBS volumes per instance to scale data-intensive workloads.
read more →